Brad Fitzpatrick (brad) wrote,
Brad Fitzpatrick
brad

potential linux NFS server DoS?

So, somebody found a 20 month old bug in Linux's NFS server code:

http://www.ussg.iu.edu/hypermail/linux/kernel/0311.1/0220.html

A dentry is freed twice, and somebody can snag it in the very short time between, then have it be corrupted on the second free, resulting in a likely crash.

I wonder how long before somebody makes a DoS tool out of this, just by doing tons of rename operations in one thread while making and deleting tons of files in another. I guess it's not high-profile enough to be a huge deal... not like there are public NFS servers out there, are there? People would just be crashing their business/school NFS servers.
Subscribe
  • Post a new comment

    Error

    default userpic

    Your reply will be screened

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.
  • 2 comments